Re: reducing our reliance on MD5

From: Arthur Silva <arthurprs(at)gmail(dot)com>
To: Peter Geoghegan <pg(at)heroku(dot)com>
Cc: Robert Haas <robertmhaas(at)gmail(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>
Subject: Re: reducing our reliance on MD5
Date: 2015-02-11 01:22:33
Message-ID: CAO_YK0XOFHnqiGa0S_kjL_5V5_jYz=j1=RXh4QKRraZvSSNKcA@mail.gmail.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

On Tue, Feb 10, 2015 at 11:19 PM, Peter Geoghegan <pg(at)heroku(dot)com> wrote:

> On Tue, Feb 10, 2015 at 5:14 PM, Arthur Silva <arthurprs(at)gmail(dot)com> wrote:
> > I don't think the "password storing best practices" apply to db
> connection
> > authentication.
>
> Why not?
>
> --
> Peter Geoghegan
>

I assume if the hacker can intercept the server unencrypted traffic and/or
has access to its hard-drive the database is compromised anyway.

I maybe missing something though.

In response to

Responses

Browse pgsql-hackers by date

  From Date Subject
Next Message Peter Geoghegan 2015-02-11 01:25:37 Re: reducing our reliance on MD5
Previous Message Peter Geoghegan 2015-02-11 01:19:27 Re: reducing our reliance on MD5